This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft File: TuwmeuLxv5Xm16FCCA5d96MTlJI.mft (raw, json) Hash identifier: KhV8oOkJpfUSkl8gUA/276OHj3u39R2GndJUQ+2yYOg= Subject key identifier: 07:5A:51:77:F4:9F:44:38:69:ED:14:34:6C:E7:41:4F:C4:13:9B:CC Authority key identifier: 4E:EC:26:7A:E2:F1:BF:95:E6:D7:A1:42:08:0E:5D:F7:A3:13:94:92 Certificate issuer: /CN=4eec267ae2f1bf95e6d7a142080e5df7a3139492 Certificate serial: 019C4390A67798B1DE7156FACF51F5250B93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft Manifest number: 0CF3 Signing time: Mon 09 Feb 2026 18:01:18 +0000 Manifest this update: Mon 09 Feb 2026 18:01:18 +0000 Manifest next update: Tue 10 Feb 2026 18:01:18 +0000 Files and hashes: 1: TuwmeuLxv5Xm16FCCA5d96MTlJI.crl (hash: unNk5COjjuFs6ZzNH+Tox1Oc6byIDjjvFy7w/CBchFI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:a6:77:98:b1:de:71:56:fa:cf:51:f5:25:0b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4eec267ae2f1bf95e6d7a142080e5df7a3139492 Validity Not Before: Feb 9 18:01:18 2026 GMT Not After : Feb 10 18:01:18 2026 GMT Subject: CN=075a5177f49f443869ed14346ce7414fc4139bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:77:fa:e2:65:f3:ee:ff:7e:c7:6d:84:2b:0c: b8:5a:60:6a:29:01:2b:2f:6b:32:14:19:57:37:19: 32:57:65:58:0c:fa:55:98:fb:60:8a:9d:07:76:94: f4:52:50:88:fa:b9:fc:46:f7:aa:d1:d0:c2:05:54: 96:1b:31:9f:93:77:0f:20:35:05:c4:50:32:41:49: cb:ec:b6:a6:a7:2a:30:15:3c:ca:3c:ff:b5:fa:64: 9e:70:3f:bf:08:ee:e4:b2:fc:a1:35:eb:0b:91:13: 13:2d:f3:df:ec:71:f4:19:75:72:e2:95:ec:76:67: 67:68:eb:91:02:0c:12:83:30:42:03:74:19:6d:61: e7:bd:67:8f:da:1b:7d:80:f8:a1:ef:3a:60:81:ef: ca:ca:62:d3:00:15:b9:92:69:c8:2e:34:7b:5d:b5: eb:7b:87:c3:33:67:3a:a7:26:bd:17:b2:75:8f:46: 6f:56:34:4c:55:36:f8:b7:d8:13:54:a3:f8:dd:f8: 41:13:df:48:9b:13:39:1d:69:60:16:c6:d4:f9:e0: c2:e9:30:1f:ab:ef:55:9b:48:61:51:3b:30:b9:55: ad:5c:1d:91:62:67:46:64:81:8e:30:14:1c:8d:0a: c1:6f:49:f1:f2:22:ad:57:9c:fa:d9:14:51:ce:45: d3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:5A:51:77:F4:9F:44:38:69:ED:14:34:6C:E7:41:4F:C4:13:9B:CC X509v3 Authority Key Identifier: keyid:4E:EC:26:7A:E2:F1:BF:95:E6:D7:A1:42:08:0E:5D:F7:A3:13:94:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:cd:6b:58:44:12:56:a3:b5:d9:cb:81:17:f8:ed:21:92:71: c6:24:19:73:f3:16:4e:dc:02:df:ed:ea:a8:a2:b0:97:dc:ff: dd:50:7c:5c:5b:96:c2:51:0a:01:62:b6:d7:58:fc:c7:03:22: 40:4e:a0:27:a4:bd:f8:fe:3d:d0:82:43:96:ae:0e:19:f2:ba: c3:df:e3:43:56:78:f0:a3:a7:c4:e0:1e:32:4c:d0:42:42:4a: 7d:cf:3f:f3:e9:64:e9:24:b2:23:27:7c:36:1c:e0:ee:8f:e0: 60:6c:24:a1:c6:52:12:13:f9:b5:b8:10:c2:ef:0f:40:fc:6a: be:61:6b:4c:7b:4a:d7:51:3a:e0:89:85:bd:7d:f5:48:24:40: 57:d8:4c:9e:e7:39:37:60:25:34:d3:0a:b6:2c:c6:61:68:0d: 61:00:fc:ca:45:1f:bd:8f:1c:5d:c4:89:a8:10:94:99:c4:7f: e1:33:7e:59:24:00:b6:c9:d0:01:ee:79:20:b0:7d:9b:c0:33: 4c:91:df:ce:62:1b:06:0e:36:3a:30:81:4f:db:6c:a7:b4:7d: ac:d3:b0:a1:8c:b6:ac:da:91:ab:6a:13:bc:31:eb:91:1d:2c: c5:ca:9a:20:54:ad:f1:9d:1b:e9:fa:3a:8a:24:54:de:5b:41: 8b:44:0b:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkKZ3mLHecVb6z1H1JQuTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZWMyNjdhZTJmMWJmOTVlNmQ3YTE0MjA4MGU1ZGY3YTMx Mzk0OTIwHhcNMjYwMjA5MTgwMTE4WhcNMjYwMjEwMTgwMTE4WjAzMTEwLwYDVQQD EygwNzVhNTE3N2Y0OWY0NDM4NjllZDE0MzQ2Y2U3NDE0ZmM0MTM5YmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXf64mXz7v9+x22EKwy4WmBqKQEr L2syFBlXNxkyV2VYDPpVmPtgip0HdpT0UlCI+rn8Rveq0dDCBVSWGzGfk3cPIDUF xFAyQUnL7LampyowFTzKPP+1+mSecD+/CO7ksvyhNesLkRMTLfPf7HH0GXVy4pXs dmdnaOuRAgwSgzBCA3QZbWHnvWeP2ht9gPih7zpgge/KymLTABW5kmnILjR7XbXr e4fDM2c6pya9F7J1j0ZvVjRMVTb4t9gTVKP43fhBE99ImxM5HWlgFsbU+eDC6TAf q+9Vm0hhUTswuVWtXB2RYmdGZIGOMBQcjQrBb0nx8iKtV5z62RRRzkXTjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAdaUXf0n0Q4ae0UNGznQU/EE5vMMB8GA1UdIwQY MBaAFE7sJnri8b+V5tehQggOXfejE5SSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHV3bWV1THh2NVhtMTZGQ0NBNWQ5Nk1UbEpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS82OGI0NjQtMjQ2MC00ZTUzLWFkZTMt NmI5NmM4MzYxMjY1LzEvVHV3bWV1THh2NVhtMTZGQ0NBNWQ5Nk1UbEpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS82OGI0NjQtMjQ2MC00ZTUzLWFkZTMtNmI5NmM4MzYxMjY1 LzEvVHV3bWV1THh2NVhtMTZGQ0NBNWQ5Nk1UbEpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZM1rWEQS VqO12cuBF/jtIZJxxiQZc/MWTtwC3+3qqKKwl9z/3VB8XFuWwlEKAWK211j8xwMi QE6gJ6S9+P490IJDlq4OGfK6w9/jQ1Z48KOnxOAeMkzQQkJKfc8/8+lk6SSyIyd8 Nhzg7o/gYGwkocZSEhP5tbgQwu8PQPxqvmFrTHtK11E64ImFvX31SCRAV9hMnuc5 N2AlNNMKtizGYWgNYQD8ykUfvY8cXcSJqBCUmcR/4TN+WSQAtsnQAe55ILB9m8Az TJHfzmIbBg42OjCBT9tsp7R9rNOwoYy2rNqRq2oTvDHrkR0sxcqaIFSt8Z0b6fo6 iiRU3ltBi0QLyg== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:43 2026 by rpki-client